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3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1, 453 O.G. 213. 

Disposition of Claims 

4) ^1 Claim(s) 1-48 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) Q Claim(s) is/are allowed. 

6) S Claim(s) :M8 is/are rejected. 

7) D Claim(s) is/are objected to. 
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Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
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DETAILED ACTION 
Claim Rejections - 35 USC § 103 

1 . The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

2. Claims 1 - 48 are rejected under 35 U.S.C. 103(a) as being unpatentable over Cohen et al 
(U.S. 6,178,51 1) in view of Prasanta Behera (U.S. 6,535,879). 

♦ As per claim 1, 22, 43, 

Cohen discloses a method for managing user schemas in a distributed computing system, 
comprising: 

- " Creating a first global user identification for a first user" See Fig. 10, col. 8, lines 41 - 
46, 63 - 67. The first global user identification corresponds to user A 5 identification. 

- This is the global identification because the information about the user (Personal Key 
manager) is stored in a global database (col. 4, lines 61-64, col. 5, lines 16-21) 

- " Creating a second global user identification for a second user" See Fig. 10, col. 8, lines 
41 - 46, 63 - 67. The second global user identification corresponds to user B or X' 
identification. 

- " Creating a local user schema at a network node" the local user schema corresponds to 
the information that stored in a second database, called Configuration Information 
Manager (CIM) (See col. 5, lines 22 - 27). The content of CM is described in col. 5, 
lines 59 - col. 6, lines 7. 
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- " Mapping the first global user identification to the local user schema" See Fig. 7-8, col. 
7, lines 11 -17. 

- " Mapping the second global user identification to the local user schema" See Fig. 7-8, 
col. 7, lines 11-17. 

- "When the first user logs into the network node, assigning the local user schema to the 
first user with a first user role; when the second user logs into the network node, 
assigning the local user schema to the second user with a second user role" 

Cohen does not clearly disclose that assigning the local user schema to the user with user 
role. Cohen teaches that the CIM includes the application type, and specific information that can 
be used to allow that user to access the information. Cohen also teaches that the PKM is mapped 
to a set of remote procedure calls on each client machine. Those remote procedure calls have 
different protection levels and different properties (col. 9, lines 24 - 28, Cohen). 

However, Behera, on the other hand, discloses a method for access control via properties 
system that stored the access schema/role associated with an Access control List (See col. 4, 
lines 45 - 46). 

It would have been obvious to one with ordinary skill in the art at the time the invention was 
made to modify the CIM data of Cohen to include the access schema as described in Behera 
invention because the teaching would provide more security in protecting the data using different 
roles for different users. 

- " Wherein the first user and the second user have different privileges on the network 
node" see col. 3, lines 38 - 45, Behera. 

♦ As per claim 2, 23, 44, the combination of Cohen and Behera disclose: 
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- " The method of claim 1 in which the first and second global user identifications are 
stored in a directory" col. 11, lines 54 - 56, Cohen. 

♦ As per claim 3, 24, the combination of Cohen and Behera disclose: 

- " The method of claim 2 in which the directory comprises a LDAP directory" See col. 3, 
lines 9 - 30, Behera. 

♦ As per claim 4, 25, 45, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which the network node is a database server" See Fig. 1, col. 
3, lines 60 67, Cohen. 

♦ As per claim 5, 26, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which a data object maps the first global user identification to 
the local user schema" See Fig. 7-8, col. 7, lines 11-17, col. 9, lines 24 - 28, Cohen. 

♦ As per claim 6 - 7, 27 - 28, 47, the combination of Cohen and Behera disclose: 

- " The method of claim 5 in which the data object specifically maps only the first global 
user identification to the local user schema" Because this process is applied for a single 
user, therefore, the data object specifically maps only the first global user identification to 
the local user schema. 

♦ As per claim 8 - 9, 29 - 30, 48, the combination of Cohen and Behera disclose: 

- " The method of claim 5 in which the data object potentially maps multiple users to the 
local user schema", "The method of claim 8 in which the data object maps based upon a 
partial identification of the users" See col. 4, lines 40 - 44, Behera. 

♦ As per claim 10 - 1 1, 31 - 32, the combination of Cohen and Behera disclose: 
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- " The method of claim 5 in which the data object maps based upon a specific computer 
node", "The method of claim 10 in which the data object resides in a directory beneath an 
associated server object" See col. 6, lines 38-42, Cohen. 

♦ As per claim 12 - 13, 33 - 34, the combination of Cohen and Behera disclose: 

- " The method of claim 5 in which the data object maps based upon a domain", "The 
method of claim 12 in which the data object resides beneath a domain object" See col. 4, 
lines 52 - 53, 64 - col. 5, lines 2, Cohen. 

♦ As per claim 14, 35, 46, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which the first user role and the second user role are 
different" See col. 3, lines 38 - 45, Behera. 

♦ As per claim 15, 36, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which privileges associated with the local schema are 
assigned to the first and second users" See col. 4, lines 45 - 46, Behera. 

♦ As per claim 16, 37, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which an entry-level mapping object maps a specific user and 
in which a sub tree-level mapping object potentially maps multiple users based upon a 
partial match of user identifications, wherein the entry-level mapping object takes 
precedence over the sub tree-level mapping object" See Fig. 6, Behera. 

♦ As per claim 17, 38, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which an server mapping object and a domain mapping object 
both map a user, wherein the server mapping object takes precedence over the domain 
mapping object" Fig. 6, col.4, lines 63 - col. 5, lines 4, Behera. 
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♦ As per claim 18 - 19, 39 - 40, the combination of Cohen and Behera disclose: 

- " The method of claim 1 in which a record is maintained to track mappings to the local 
user schema that provides an audit trail corresponding to the first and second users. The 
method of claim 18 in which the record distinguished between mappings for the first and 
second users" See fig. 5, Cohen. 

♦ As per claim 20 - 21, 41 - 42, the combination of Cohen and Behera disclose: 

- " The method of claim 1 further comprising the act of creating a local mapping at the 
network node, in which the first user is mapped to the local schema only if the local 
mapping does not contain a mapping for the first user" See col. 5, lines 6 - 67, Cohen. 

- The method of claim 1 further comprising the act of creating a non-shared schema at the 
network node, the local user schema being a shared schema at the network node, in which 
the first user is mapped to the shared schema only if the first user is not mapped to the 
non-shared schema" See col. 5, lines 49 - 58, Cohen. 

Response to Arguments 
3. Applicant's arguments filed 12/06/2004 have been fully considered but they are not 
persuasive. 

Applicant argues that the references fail to disclose or suggest mapping a first global user 
identification and a second global user identification to a local schema. The Examiner 
respectfully disagrees. 

Cohen discloses a method for matching plurality of CIM entry with a PKM entry in a logon 
process. In the same fashion, the instant application also tries to map plurality of global 
identifications to a local schema. Therefore, both methods are considered the same. 
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Conclusion 

4. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to CamLinh Nguyen whose telephone number is 703 - (571) 272- 
4024. The examiner can normally be reached on Monday-Friday. 

From October 25, 2004, the Examiner can be reached at a new phone number: 571 - 
272-4024. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Safet Metjahic can be reached on (571) 272-4023. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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